P
US6990587B2ExpiredUtilityPatentIndex 95

Cryptographic architecture for secure, private biometric identification

Assignee: SYMBOL TECHNOLOGIES INCPriority: Apr 13, 2001Filed: Apr 13, 2001Granted: Jan 24, 2006
Est. expiryApr 13, 2021(expired)· nominal 20-yr term from priority
Inventors:WILLINS BRUCESHARONY JACOBWANG HUAYAN
H04L 9/3231H04L 2209/805
95
PatentIndex Score
60
Cited by
5
References
18
Claims

Abstract

A semiconductor device for securely controlling access to a cryptographic processor including a semiconductor package with a biometric data capture device therein operative to acquire data associated with predetermined biometric characteristic of a user and store it as a biometric key, and a processing unit in the package coupled to the data capture device. An encryption/decryption circuit is also disposed in the semiconductor package and is operative to perform encryption or decryption on input data utilizing the biometric key.

Claims

exact text as granted — not AI-modified
1. A semiconductor device for securely controlling access to cryptographic processing of data comprising:
 a semiconductor package; 
 a cryptographic processor disposed in the semiconductor package, the processor including a biometric data capture device operative to acquire biometric data associated with a predetermined biometric characteristic of a user and store the biometric data as a biometric key, and an encryption/decryption circuit operative to perform encryption or decryption on input data utilizing said biometric key. 
 
   
   
     2. A device as defined in  claim 1 , wherein the stored biometric key is encrypted data. 
   
   
     3. A device as defined in  claim 1 , wherein the biometric data capture device performs an encryption operation on the biometric data to produce encrypted source data. 
   
   
     4. A device as defined in  claim 3 , wherein the processor compares the encrypted source data with the stored biometric key. 
   
   
     5. A device as defined in  claim 3 , wherein the predetermined biometric characteristic is a fingerprint. 
   
   
     6. A mobile computers, comprising:
 a hand-held housing; 
 a wireless RF transceiver in the housing to transmit and receive data over a wireless communication channel; 
 a data input device in the housing; 
 a data output device in the housing; and 
 a cryptographic processor disposed in a single semiconductor package, the processor including a biometric data capture device contained in the semiconductor package to capture biometric data associated with a predetermined biometric characteristic of a user and store the biometric data as a biometric key; and an encryption/decryption circuit disposed in the semiconductor package operative to perform encryption or decryption on input data utilizing said biometric key. 
 
   
   
     7. A device as defined in  claim 6 , wherein the stored biometric key is stored as encrypted data. 
   
   
     8. A device as defined in  claim 6 , wherein the biometric data capture device performs an encryption operation on the biometric data to produce an encrypted key. 
   
   
     9. A device as defined in  claim 8 , wherein the processor utilizes the stored biometric key with a cryptographic algorithm. 
   
   
     10. A device as defined in  claim 8 , wherein the predetermined biometric characteristic is a fingerprint. 
   
   
     11. A secure wireless local area network comprising:
 a mobile computer including a cryptographic processor and a wireless RF transceiver; 
 an access point connected to a wired local area network, the access point including a wireless RF transceiver capable of communication with the mobile computer; and 
 a security protocol program executed in the cryptographic processor in said mobile computer and in said access point to establish authentication of the mobile computer by said access point by verification of a stored encrypted biometric key in said cryptographic processor. 
 
   
   
     12. A network as defined in  claim 11 , wherein said cryptographic processor includes a biometric data capture device and an encryption/decryption circuit operative to perform encryption or decryption on input data to the processor utilizing said biometric key. 
   
   
     13. A network as defined in  claim 12 , wherein the stored biometric key is encrypted biometric data from an authorized user of the network. 
   
   
     14. A network as defined in  claim 13 , wherein the processor performs an encryption operation on the biometric data to produce encrypted source biometric data which is stored as the biometric key. 
   
   
     15. A network as defined in  claim 14 , wherein the processor compares the encrypted source biometric data with the biometric data of a current user of the mobile computer as derived by the biometric data capture device. 
   
   
     16. A network as defined in  claim 14 , wherein the biometric data is a fingerprint. 
   
   
     17. A network as defined in  claim 14 , further comprising an authentication server connected to the wired local area network. 
   
   
     18. A network as defined in  claim 17 , further comprising a software protocol above a radio frequency MAC level.

Cited by (0)

No later patents cite this yet.

References (0)

No backward citations on record.